search cancel

Can ACF2 Or TSS GENCERT Command Specify Multiple Subject ALtname Extensions?

book

Article ID: 227716

calendar_today

Updated On:

Products

ACF2 - z/OS Top Secret

Issue/Introduction

With an ACF2 GENCERT or a TSS GENCERT command, can multiple values be defined in the subject altname extension? For example, two (2) URIs that represent two VPNs.

 

Environment

Release : 16.0

Component : ACF2 for z/OS and Top Secret for z/OS

Resolution

The ACF2 GENCERT and TSS GENCERT commands support the ALtname parameter which specifies the IP, DOMAIN, EMAIL, and/or URI values for the subjectAltName extension. One or more of the values can be specified, however, multiple entries of the same type are not supported. For example, two DOMAIN, two IP or 2 URI values cannot be specified but one DOMAIN, one IP, one EMAIL and one URI value can be specified in the ALTNAME parameter.